No I'm not looking for a Google'd link, believe me, I've done enough of that..unless it's something I've missed, I'm looking for some real help from someone who's dealt with this...it seems to be happening a lot lately, so someone has to have removed it completely. It's possible I may have to just let go and re-install, but maybe there's a way, anyone?

Last edited by requinix; October 3rd, 2012 at 01:19 PM.
Reason: trimmed out malicious code

Your site has been seriously compromised. Shut it down. Remove all instances of this bad code (or re-export from source control). Upgrade PHP, your webserver, and any other services that listen on ports.

If this is a shared host, move to a new one.

There aren't really any "tips" for recovering from a server hack. Shut it down, clean it out, and come back.

It just seems to me that removing all of the bad scripts and files that are sitting in there, then disabling base64_decode in my php.ini should work...maybe it's just easier to wipe everything, I guess. =(